Embedded Product Security Engineer

Work Flexibility: Hybrid

Who we want

Dedicated achievers. People who thrive in a fast-paced environment and will stop at nothing to ensure a project is complete and meets regulations and expectations.

Curious learners. People who seek out cutting-edge research and information to expand and enhance their ability to be ready for what’s next.

Self-directed initiators. People who take ownership of their work and need no prompting to drive productivity, change, and outcome

and will stop at nothing to ensure a project is complete and meets regulations and expectations

Inspires others.  A genuine, relationship-focused leader who connects, collaborates and fosters an inclusive environment of enthusiasm, trust and pride. He/she makes others want to follow, building momentum for action and positively influencing outcomes.

Champions talent development.  A manager who focuses on maximizing the ability, potential and contributions of themselves and others.   Fosters an environment where people can excel through developing, coaching and rewarding performance.

What you will do

• Conduct security assessments and penetration testing on embedded and IoT products.
• Identify and mitigate security vulnerabilities in hardware, firmware, and software.
• Develop and implement security features and protocols for embedded and IoT devices.
• Collaborate with development teams to ensure secure coding practices and security requirements are integrated into the product lifecycle.
• Perform threat modeling, risk assessments, and security code reviews.
• Stay up-to-date with the latest security trends, threats, and technologies in the embedded and IoT space.
• Provide security guidance and training to internal teams and stakeholders.
• Provide support/inputs in issue remediation.
• Prepare Test Plans and Test Reports to support test activities.

What you need

• Bachelor’s in Software/Electronics Engineering or equivalent degree.
• 2-12  years of hands-on experience in Embedded and IoT Security
• Experience in automation of routine tasks using tools like Jenkins and/or scripting languages such as PowerShell, Ruby or Python.
• Strong understanding of security principles and practices related to embedded systems and IoT devices
• Experience with security assessment tools and techniques, including penetration testing, fuzz testing, and code reviews.
• Proficiency in programming languages such as C, C++, Python, or JavaScript.
• Knowledge of secure coding practices and security frameworks.
• Familiarity with cryptographic algorithms and protocols.
• Experience with embedded development environments and tools (Preferred).
• At least one professional certification like ECSA Practical/CPENT/LPT/OSCP/OSWE/OSCE or similar involving practical exams.
• Excellent communication and interpersonal skills.